Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: IrHJs9ASsz2kQ1z1EkJPbn0bqSsVt3dd1XjD9RUJgsk=
Subject key identifier: 4E:36:D5:22:B0:ED:F8:4F:4F:2A:DC:2F:C8:30:62:43:44:02:6C:BD
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 01988F5A04ECB7A3F8A2D0E089A535165DA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 1624
Signing time: Sat 09 Aug 2025 15:01:38 +0000
Manifest this update: Sat 09 Aug 2025 15:01:38 +0000
Manifest next update: Sun 10 Aug 2025 15:01:38 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: lIRC6z1LJdYsQkyvALrDInCVHMg2PTUt9gNWicnGLmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:5a:04:ec:b7:a3:f8:a2:d0:e0:89:a5:35:16:5d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Aug 9 15:01:38 2025 GMT
Not After : Aug 10 15:01:38 2025 GMT
Subject: CN=4e36d522b0edf84f4f2adc2fc830624344026cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a4:59:98:4e:fd:20:a5:05:31:9b:86:90:da:
d0:d3:1d:6e:8d:84:76:e7:ca:50:17:c9:61:a0:50:
25:aa:c4:0a:31:f4:5e:ff:2f:6f:09:89:55:7b:43:
d0:fa:97:61:47:e4:d5:65:77:9f:58:3c:c2:41:15:
2b:c0:8d:e2:25:a2:2e:30:e9:99:de:6d:2d:45:a8:
48:ff:98:b1:89:cd:8d:e7:8a:64:50:13:34:9d:5d:
5f:cf:59:17:f8:e7:62:c1:6f:b1:da:b3:b0:27:60:
c3:8e:54:7b:d5:8e:17:16:0c:c4:73:7c:66:ba:80:
8d:24:c2:3f:54:5a:e7:b1:21:94:ba:f7:84:8d:a1:
7a:27:bc:25:16:cc:3e:0a:3d:f3:dc:43:3b:cc:80:
07:b5:bd:04:ba:b2:d4:35:f2:a5:5b:35:4e:3a:bb:
84:b0:56:02:7b:62:d5:19:59:ca:90:b3:24:f3:3e:
34:58:88:04:b7:1a:83:5d:3b:09:87:06:0a:1a:fc:
9b:fa:5c:a1:47:3c:4c:de:27:ed:41:5b:79:36:fb:
cc:3d:6d:c8:54:0e:73:b3:55:ea:7a:15:a2:10:9d:
50:a2:54:e2:1f:29:24:f1:e8:51:08:d3:7a:a5:f6:
ef:47:7f:6a:ec:6d:95:6c:5d:74:f0:fb:5e:01:16:
ac:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:36:D5:22:B0:ED:F8:4F:4F:2A:DC:2F:C8:30:62:43:44:02:6C:BD
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ca:21:40:66:7b:1f:cb:23:70:e2:b5:73:6f:6a:2f:4d:b1:
45:45:b2:04:ff:aa:09:89:da:4d:e2:46:3b:33:ef:c0:4e:a6:
e4:04:a8:6d:47:6c:4f:1b:47:d0:1c:3b:5e:ab:bb:5a:31:87:
96:25:da:14:07:83:b1:35:7f:9c:5c:27:eb:ee:aa:a0:a9:0c:
54:9d:a3:1a:d0:13:c1:bd:53:8f:f7:44:c1:3e:f6:97:9c:68:
c1:76:e5:8a:2b:d1:e9:60:83:f3:2a:c1:3f:e9:fe:26:05:40:
ad:65:60:98:e6:11:d3:27:16:71:8a:c7:25:60:c7:ef:aa:f6:
d2:de:96:90:c8:96:86:c2:01:09:23:4c:3f:4b:d5:72:b0:22:
00:15:8d:0a:20:2d:b8:ad:19:9f:9f:d9:73:a1:3d:12:5a:a4:
98:b5:6c:0b:07:4a:41:65:ab:2d:e8:b0:48:37:aa:46:7d:83:
11:95:ac:a1:25:08:aa:69:3c:0f:af:1b:4c:b0:48:39:58:2c:
05:4c:bf:02:f2:d4:23:b5:42:9c:cc:c1:54:91:1b:f4:95:26:
6b:76:ad:4e:52:cf:42:be:0a:99:f3:1f:a0:89:18:84:a5:f4:
17:a0:d3:10:e4:38:d4:e0:e1:2b:6d:f8:d1:b6:af:d4:fe:e2:
52:fc:c4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:43:03 2025 by rpki-client